General

  • Target

    a36c4f478010f9ce822bf1b78025ca07314b63f2c563a2a971c253a5855e1fc3

  • Size

    899KB

  • Sample

    240427-j5g32sfb6t

  • MD5

    7f059662e5bc353d37bc85f55016c4d5

  • SHA1

    a471ab95d7c46fd45fd3209315437210b0791b90

  • SHA256

    a36c4f478010f9ce822bf1b78025ca07314b63f2c563a2a971c253a5855e1fc3

  • SHA512

    e6ae27843245023d39f670803335cb7f5fe36288412a27ce19a8198f1088430ccbfe51fa315fdfb4c72fa17846c64302ecdb9bed84cc96534450eaf48233f4f3

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXD:7wqd87VD

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      a36c4f478010f9ce822bf1b78025ca07314b63f2c563a2a971c253a5855e1fc3

    • Size

      899KB

    • MD5

      7f059662e5bc353d37bc85f55016c4d5

    • SHA1

      a471ab95d7c46fd45fd3209315437210b0791b90

    • SHA256

      a36c4f478010f9ce822bf1b78025ca07314b63f2c563a2a971c253a5855e1fc3

    • SHA512

      e6ae27843245023d39f670803335cb7f5fe36288412a27ce19a8198f1088430ccbfe51fa315fdfb4c72fa17846c64302ecdb9bed84cc96534450eaf48233f4f3

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXD:7wqd87VD

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks